Aura Auth
Getting Started

Installation

This guide walks you through installing Aura Auth in your project and setting up the initial configuration.

Install the Package

Aura Auth packages are distributed via npmjs, jsr.io, and jsdelivr CDN registries. You could install the package in any JavaScript project.

npm install @aura-stack/auth

Project Structure

Create a shared auth.ts file for server configuration and an optional auth-client.ts for browser client configuration inside the src/lib folder.

auth.ts
auth-client.ts
.env.local

Create a shared auth.ts file for server configuration inside the src/lib folder.

auth.ts
index.ts
.env.local
wrangler.jsonc

Create a shared auth.ts file for server configuration inside the functions/_shared folder. The folders that start with an underscore _ are not treated as Edge Function routes and are ideal for shared code.

auth.ts
deno.json
index.ts
config.toml
.env.local

Create a shared _auth.ts file for server configuration inside the api folder. The files that start with an underscore _ are not treated as API routes and are ideal for shared code.

index.ts
_auth.ts
index.ts
.env.local
vercel.json

Environment setup

Create a .env or .env.local file at the root of your project to store secrets securely.

Never commit your .env and .env.local files. Always use a secret manager in production.

Secret Key

A secret value used to sign and encrypt sessions and CSRF tokens. This should be a secure random value of at least 32 bytes (256 bits) in length, encoded in base64 or hex format.

Use openssl rand -base64 32 or openssl rand -hex 32 to generate a secure random value.

.env
AURA_AUTH_SECRET=

Salting Key

A random value used for salting the derivation keys for signing and encryption. This should also be a secure random value of at least 32 bytes (256 bits) in length, encoded in base64 or hex format.

Use openssl rand -base64 32 or openssl rand -hex 32 to generate a secure random value.

.env
AURA_AUTH_SALT=

Base URL

The base URL of your application, used to construct the full URLs.

.env
AURA_AUTH_BASE_URL=http://localhost:3000

Set up TypeScript

Aura Auth is built in TypeScript and provides first-class TypeScript support. If you're using TypeScript, make sure to configure your tsconfig.json properly.

{
  "compilerOptions": {
    /**
     * Recommend enabling strict mode.
     */
    "strict": true,
    "skipLibCheck": true,
    /**
     * Aliases
     */
    "baseUrl": ".",
    "paths": {
      "@/*": ["./src/*"]
    }
  }
}

For a complete Typescript set up guide, see the TypeScript Configuration documentation.

Introduction

Aura Auth is a modern, type-safe authentication for TypeScript — built for security, extensibility, and developer experience.

Quick Start

Create your Aura Auth instance and start building authentication flows in simple steps.

On this page

Install the PackageProject StructureEnvironment setupSecret KeySalting KeyBase URLSet up TypeScript